Some Cisco firewalls may not receive security feed updates after March 5
Image: The Record
Catalin Cimpanu February 23, 2022

Some Cisco firewalls may not receive security feed updates after March 5

Some Cisco firewalls may not receive security feed updates after March 5

Cisco has published an urgent alert on Monday, warning firewall owners to install a recent firmware update, or they may not receive updates for their security feeds after March 5, next week.

“The existing SSL certificate authority (CA) used to sign certificates for Talos security intelligence updates will be decommissioned and replaced on March 6, 2022,” the security vendor said in a field note this week.

Talos security intelligence updates are a collection of IP addresses, URLs, and DNS hosts that Cisco firewalls download from a repository managed by Cisco’s Talos security team.

The firewalls use these rules to analyze customer traffic and block malicious content.

But on Monday, Cisco said that once it migrates the Cisco Talos security feed servers to new certificates, its firewalls won’t be able to recognize these new feeds.

To mitigate this issue, the American security company has published software updates that add support for the new Talos security feed infrastructure.

Network administrators that use Cisco firewalls to protect their environments are advised to install this update to continue receiving security updates; otherwise, they’ll be forced to download and manually add these updates into their devices.

According to Cisco, firewall products like AMP, ASA, Firepower, Firepower Management Center, and ISA are impacted. A full list of products and available updates are available in the field note.

Catalin Cimpanu is a cybersecurity reporter for The Record. He previously worked at ZDNet and Bleeping Computer, where he became a well-known name in the industry for his constant scoops on new vulnerabilities, cyberattacks, and law enforcement actions against hackers.